Expert Advice Community

Guest

CISO role

  Quote
Guest
Guest user Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

CISO role

1. What happenes if the organization does not have a CISO and the COO/ CTO is responsible for the security, can we use use COO/CTO in the templates instead of CISO where ever it is applicable.
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Guest
Guest post Jan 12, 2016

2. What is the “Document valid as of date” in all the template, is this the date the template get approved.

Answers:

1. ISO 27001 allows you to allocate the responsibility of security to anyone in the organisation as long as (1) he has enough authority, and (2) he has sufficient independence, and 3° he has a minimal of education in security.
This post will probably help you further: What is the job of Chief Information Security Officer (CISO) in ISO 27001? https://advisera.com/27001academy/knowledgebase/what-is-the-job-of-chief-information-security-officer-ciso-in-iso-27001/

2. The field ‘Valid as of date’ indicates the date from which the document and its content is applicable. It me be months after validation, for example when the organisation has to acquire and install technology or gain a specific competence.

Best regards
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics